Fortinet and Ixia Security Solution

Better Data for Faster Responses

Ponemon Institute reports that it still takes about six months to identify a data breach and more than two months to contain it once detected. To speed the appropriate response to security events, organizations need a highly integrated and automated security infrastructure that makes it easy to detect and block threats, enforce policies, and scale. All of this hinges on having complete, intelligent visibility across hybrid networks and data centers.

Fortinet and Ixia have teamed up to deliver complete solutions that mitigate complexity and effort as well as risk. Leveraging the Fortinet Security Fabric with Ixia's hybrid network visibility automates data capture, speeds analysis, and promotes the right proactive and preventive response.

The Fortinet and Ixia Joint Solution

The integrated solution from Fortinet and Ixia leverages the Fortinet Security Fabric that is designed around a series of open APIs, Open Authentication Technology, and standardized telemetry data. The Security Fabric enables organizations to integrate existing security technologies via open interfaces and provide end-to-end security without compromise.

Ixia's intelligent network and cloud visibility play a crucial role in operating and scaling an end-to-end security infrastructure. Ixia provides the packet-level visibility needed to equip Fortinet appliances with precisely the right data to promote fast and accurate responses, and automated failover protection to ensure resilience.

How it Works

Ixia's network visibility solutions include physical and virtual taps (vTaps) that capture packet-level data across a hybrid network or data center. Traffic is sent to Ixia's Vision network packet brokers (NPBs) for intelligent processing to remove duplicates as well as sensitive data and any unnecessary packets or header information. Vision NPBs then deliver precisely the right data that each FortiGate solution requires for fast and accurate analysis.

Diagram of Joint Solution

The diagram illustrates the integration of the Fortinet Security Fabric with Ixia's components. It shows a Bypass Switch connected to a Network Packet Broker. The Network Packet Broker is then connected to various security solutions within the Fortinet Security Fabric, including NGFW, IPS, DDoS, and SIEM. This setup allows for efficient traffic distribution and analysis.

Key components shown:

Fortinet Security Fabric
Bypass Switch
Network Packet Broker
NGFW, IPS, DDoS, SIEM

Flexible Security Design

Ixia's visibility solutions deliver real-time data from live networks to inline and out-of-band security and performance monitoring solutions. Bypass switching allows devices to be brought inline or taken out of service as needed while Vision NPBs deliver precisely the right data from the network to each element of the Fortinet Security Fabric.

Intelligent Visibility Architecture

Ixia's Vision packet brokers perform deduplication, SSL decryption, timestamping, header-stripping, and a host of other intelligent processes to groom traffic for efficient use by Fortinet security solutions. Vision NPBs also load-balance to multiple security and monitoring tools to optimize utilization and extend the value of existing investments in security. The visibility architecture also includes external bypass switches that ensure high availability with failover protection during planned and unplanned link, power, and device outages.

Better Data for Better Decisions

Intelligent visibility makes security operations (SecOps) more efficient by delivering precisely the right network data to every security monitoring solution that needs to see it. This promotes fast, effective responses, reduces cost, and aids in forensics and other efforts to prevent blind spots and future vulnerabilities.

Ixia's Vision network packet brokers are known throughout the industry for reliable (zero packet loss) processing, ease of use, and delivering Layer 7 application intelligence. Vision NPBS also perform SSL decryption to alleviate the processing burden on firewalls, IPs, and other security solutions that process encrypted data.

High Availability Security Architectures

Ixia's iBypass switches maintain external connectivity during power failures and other outages, even when security appliances share a power supply with the bypass switch. Fortinet recommends automating failover using a bypass switch such as iBypass that features integrated heartbeat technology that automatically pings devices. Upon detecting failures, iBypass instantly begins routing traffic around security devices to keep data flowing.

Automated failover protection adds resilience that prevents issues from leading to costly full-blown outages. Bypass switching also allows devices to be taken in and out of service as needed without compromising the live network. This helps to speed and streamline deployments of firewalls, Intrusion Prevention Systems (IPSs), and other security solutions without having to wait for or consume valuable maintenance windows.

A typical DDoS configuration is depicted with:

Internet connected to a Bypass Switch.
The Bypass Switch is connected to a Router.
The Router is connected to a FortiGate and a FortiDDoS.
The FortiGate and FortiDDoS are connected to a Switch, which then connects to Server(s).

An Active bypass configuration is also shown, where the Bypass Switch directly connects the Internet to the Router, with the FortiDDoS and FortiGate connected in series after the Router, leading to the Switch and Servers. This highlights the failover capability.

Fortinet Security Fabric

The Fortinet Security Fabric is an architectural approach that unifies the security technologies deployed across the digital network—including multi-cloud, endpoints, email and web applications and network access points—into a single security system integrated through a combination of open standards and a common operating system. These same types of solutions are integrated into the OT environments that are enhanced through the integration of advanced threat protection technologies and a unified correlation, management, orchestration, and analysis system.

About Keysight Technologies

Keysight Technologies, Inc. (NYSE: KEYS) is a leading technology company that helps enterprises, service providers, and governments accelerate innovation to connect and secure the world. Keysight's solutions optimize networks and bring electronic products to market faster and at a lower cost with offerings from design simulation, to prototype validation, to manufacturing test, to optimization in networks and cloud environments. Customers span the worldwide communications ecosystem, aerospace and defense, automotive, energy, semiconductor and general electronics end markets. Keysight generated revenues of $3.2B in fiscal year 2017. In April 2017, Keysight acquired Ixia, a leader in network test, visibility, and security.

Google Docs
Google Drive
Download [pdf]

File Info : application/pdf, 3 Pages, 278.31KB

sb-fortinet-alliances-nfv-ixia Adobe PDF Library 10.0.1 Adobe InDesign CS6 (Windows)

Related Documents

	Fortinet NGFW with Gigamon Inline Deployment Guide This guide provides detailed instructions for deploying Fortinet Next-Generation Firewalls (NGFWs) with Gigamon inline bypass solutions. Learn how to integrate FortiGate NGFWs with Gigamon GigaVUE-HC2 for enhanced network security, high availability, and traffic distribution.
	Fortinet and Gigamon Security Solution: Pervasive Visibility and Security This solution brief details how the Fortinet and Gigamon Security Solution, combining Fortinet's secure networking and security operations with the Gigamon Deep Observability Pipeline, enhances SOC teams' ability to rapidly identify and respond to sophisticated threats. It highlights FortiGate NGFWs for top-rated protection and advanced security services, Fortinet NDR and SIEM for visibility and threat detection, and the Gigamon Deep Observability Pipeline for enhanced visibility and intelligence.
	Fortinet FortiGate 3400E Series Data Sheet: High-Performance Network Security Detailed data sheet for the Fortinet FortiGate 3400E and 3401E series, highlighting their capabilities as Next Generation Firewalls (NGFW) with advanced threat protection, segmentation, IPS, and high-speed connectivity for enterprise and service provider networks. Features SPU NP6 and CP9 processors, Security Fabric integration, and comprehensive specifications.
	Fortinet and Cyglass Integrated Security Solution for AI-Driven Network Behavior Anomaly Detection This solution brief details the integration of Fortinet's Security Fabric with CyGlass's AI-driven network behavior anomaly detection to enhance cybersecurity. It addresses challenges in detecting advanced threats and offers benefits like improved visibility, threat detection, and asset identification.
	FortiGate 6000F Series: High-Performance Next-Generation Firewall Datasheet Technical datasheet for Fortinet's FortiGate 6000F series, including models FG-6300F, FG-6301F, FG-6500F, and FG-6501F. Features high-performance threat protection, advanced networking, and Security Fabric integration for enterprise data centers and cloud environments.
	FortiGate 1100E Series Next-Generation Firewall \| Fortinet Fortinet FortiGate 1100Eシリーズは、大規模エンタープライズおよびサービスプロバイダー向けの高性能次世代ファイアウォール（NGFW）です。高度な脅威保護、セグメンテーション、SD-WAN機能を統合し、セキュリティファブリックでネットワーク全体を保護します。
	FortiGate 200G Series Datasheet: AI-Powered Next-Generation Firewall Comprehensive datasheet for Fortinet's FortiGate 200G Series (FG-200G and FG-201G) Next-Generation Firewall (NGFW), featuring AI/ML security, deep visibility, and advanced threat protection.
	FortiDDoS and Baffin Bay Networks Riverview Cloud DDoS Protection Service A solution brief detailing the joint DDoS protection service offered by Fortinet FortiDDoS appliances and Baffin Bay Networks Riverview Cloud DDoS Protection Service, providing unified, high-volume DDoS attack remediation and actionable threat intelligence.